--- /dev/null
+
+/*
+ * Note --- this structure cannot be modified without changing the
+ * database version number in libkdb.a
+ */
+typedef struct _old_krb5_db_entry {
+ old_krb5_principal principal;
+ old_krb5_encrypted_keyblock key;
+ krb5_kvno kvno;
+ krb5_deltat max_life;
+ krb5_deltat max_renewable_life;
+ krb5_kvno mkvno; /* master encryption key vno */
+
+ krb5_timestamp expiration; /* This is when the client expires */
+ krb5_timestamp pw_expiration; /* This is when its password does */
+ krb5_timestamp last_pwd_change; /* Last time of password change */
+ krb5_timestamp last_success; /* Last successful password */
+
+ krb5_timestamp last_failed; /* Last failed password attempt */
+ krb5_kvno fail_auth_count; /* # of failed password attempts */
+
+ old_krb5_principal mod_name;
+ krb5_timestamp mod_date;
+ krb5_flags attributes;
+ krb5_int32 salt_type:8,
+ salt_length:24;
+ krb5_octet *salt;
+ krb5_encrypted_keyblock alt_key;
+ krb5_int32 alt_salt_type:8,
+ alt_salt_length:24;
+ krb5_octet *alt_salt;
+
+ krb5_int32 expansion[8];
+} old_krb5_db_entry;
+
+typedef struct _old_krb5_encrypted_keyblock {
+ krb5_keytype keytype;
+ int length;
+ krb5_octet *contents;
+} old_krb5_encrypted_keyblock;
+
+typedef struct old_krb5_principal_data {
+ krb5_magic magic;
+ krb5_data realm;
+ krb5_data *data; /* An array of strings */
+ krb5_int32 length;
+ krb5_int32 type;
+} old_krb5_principal_data;
+
+typedef old_krb5_principal_data *old_krb5_principal;
+
#include <fcntl.h>
#endif
+#define OLD_COMPAT_VERSION_1
+
+#ifdef OLD_COMPAT_VERSION_1
+#include "kdb_compat.h"
+#endif
+
#define KRB5_DBM_MAX_RETRY 5
/* exclusive or shared lock flags */
minor_version = *nextloc;
nextloc++; sizeleft--;
}
+#ifdef OLD_COMPAT_VERSION_1
+ if (major_version == 0 || major_version == 1) {
+ old_krb5_db_entry old_entry;
+
+ /*
+ * Copy in structure to old-style structure, and then copy it
+ * to the new structure.
+ */
+ sizeleft -= sizeof(old_entry);
+ if (sizeleft < 0)
+ return KRB5_KDB_TRUNCATED_RECORD;
+
+ memcpy((char *) &old_entry, nextloc, sizeof(old_entry));
+ nextloc += sizeof(old_entry); /* Skip past structure */
+
+ entry->key.keytype = old_entry.key.keytype;
+ entry->key.length = old_entry.key.length;
+
+ entry->kvno = old_entry.kvno;
+ entry->max_life = old_entry.max_life;
+ entry->max_renewable_life = old_entry.max_renewable_life;
+ entry->mkvno = old_entry.mkvno;
+
+ entry->expiration = old_entry.expiration;
+ entry->pw_expiration = old_entry.pw_expiration;
+ entry->last_pwd_change = old_entry.last_pwd_change;
+ entry->last_success = old_entry.last_success;
+
+ entry->last_failed = old_entry.last_failed;
+ entry->fail_auth_count = old_entry.fail_auth_count;
+
+ entry->mod_date = old_entry.mod_date;
+ entry->attributes = old_entry.attributes;
+ entry->salt_type = old_entry.salt_type;
+ entry->salt_length = old_entry.salt_length;
+
+ entry->alt_key.keytype = old_entry.alt_key.keytype;
+ entry->alt_key.length = old_entry.alt_key.length;
+ entry->alt_salt_type = old_entry.alt_salt_type;
+ entry->alt_salt_length = old_entry.alt_salt_length;
+
+ goto resume_processing;
+ }
+#endif
if (major_version != 2)
return KRB5_KDB_BAD_VERSION;
return KRB5_KDB_TRUNCATED_RECORD;
memcpy((char *) entry, nextloc, sizeof(*entry));
+ nextloc += sizeof(*entry); /* Skip past structure */
+
+#ifdef OLD_COMPAT_VERSION_1
+resume_processing:
+#endif
+
/*
* These values should be zero if they are not in use, but just in
* case, we clear them to make sure nothing bad happens if we need
entry->alt_salt = 0;
entry->key.contents = 0;
entry->alt_key.contents = 0;
- nextloc += sizeof(*entry); /* Skip past structure */
/*
* Get the principal name for the entry (stored as a string which
projects / krb5.git / commitdiff